Privacy Policy
Effective Date: October 7, 2024
HeroGo, Inc. ("we," "us," or "our") is committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data when you access or use our websites, mobile applications, and other related services (collectively referred to as "Services").
This Privacy Policy is intended to comply with applicable data protection regulations, including the General Data Protection Regulation (GDPR) for users located in the European Economic Area (EEA) and other relevant laws.
By using our Services, you consent to the practices described in this Privacy Policy. If you do not agree to this policy, you must discontinue your use of the Services.
1. Data Controller Information
The data controller responsible for processing your personal data under this Privacy Policy is:
HeroGo, Inc.
Email: hello@herogo.ae
If applicable, you may contact our Data Protection Officer (DPO) at the same email address for inquiries regarding this policy.
2. Personal Data We Collect
We collect various types of personal data to provide and improve our Services:
(a) Data You Provide Directly
You may provide personal data when you:
- Create an account, including your name, email address, phone number, and password.
- Place an order, including payment information, billing/shipping address, and order details.
- Communicate with us, such as submitting inquiries, feedback, or reviews.
(b) Data Collected Automatically
When you use our Services, we automatically collect certain information, including:
- Technical Data: IP address, browser type, device type, operating system, and referral sources.
- Usage Data: Pages viewed, time spent on our platform, clickstream data, and interactions.
- Location Data: General or precise geolocation, subject to your device settings.
- Cookies and Tracking Technologies: Information collected through cookies, pixels, and similar technologies.
(c) Special Categories of Data
HeroGo does not intentionally collect sensitive personal data (e.g., health information, political opinions, racial or ethnic origin) unless explicitly required and authorized by you for specific purposes.
3. How We Use Your Data
We use your personal data for the following purposes:
- To process and fulfill your orders: Including payment processing, order confirmation, and delivery coordination.
- To provide customer support: Responding to inquiries, troubleshooting issues, and enhancing user satisfaction.
- To improve our Services: Conducting analytics, testing features, and tailoring user experiences.
- To send marketing communications: Sending promotions, newsletters, and personalized offers if you have opted in to receive them.
- To ensure security and prevent fraud: Monitoring accounts for suspicious activities and protecting against unauthorized access.
- To comply with legal obligations: Retaining records for tax purposes or responding to legal requests.
We will only process your personal data for these purposes based on lawful grounds such as contract performance, legal compliance, consent, or legitimate interests.
4. Legal Basis for Processing (for EEA Users)
Under GDPR, we process your personal data based on the following legal grounds:
- Performance of a Contract: To fulfill our contractual obligations, such as processing orders and delivering products.
- Consent: For specific activities, such as sending marketing communications, where you have provided explicit consent.
- Legitimate Interests: For purposes such as improving our Services, ensuring security, and fraud prevention, provided these interests do not override your privacy rights.
- Legal Obligations: To comply with applicable laws, such as financial reporting or responding to legal requests.
5. Sharing Your Personal Data
HeroGo does not sell your personal data. However, we may share your data with the following entities:
(a) Service Providers (Processors)
We share your personal data with trusted third parties that perform services on our behalf, including:
- Payment processors (e.g., Stripe)
- Delivery and logistics providers
- Customer support platforms
- IT and hosting services
- Analytics providers (e.g., Google Analytics)
All service providers are bound by confidentiality agreements and process data only as instructed by HeroGo.
(b) Legal and Regulatory Authorities
We may disclose your personal data to comply with legal obligations or respond to valid legal requests from law enforcement or regulatory bodies.
(c) Business Transfers
In the event of a merger, acquisition, or sale of our business, your personal data may be transferred to the acquiring entity.
6. International Data Transfers
HeroGo operates globally and may transfer your personal data to countries outside your jurisdiction, including the United Arab Emirates.
Whenever your data is transferred outside the EEA, we implement safeguards such as:
- Standard contractual clauses approved by the European Commission.
- Binding corporate rules within our organization.
- Data transfer agreements ensuring an adequate level of protection.
You may request a copy of the safeguards in place by contacting us.
7. Your Rights Under GDPR
If you are an EEA resident, you have the following rights regarding your personal data:
- Right to Access: Request access to your personal data and obtain a copy.
- Right to Rectification: Request correction of inaccurate or incomplete data.
- Right to Erasure: Request deletion of your personal data, subject to legal obligations.
- Right to Restriction: Request a limitation on processing in certain circumstances.
- Right to Data Portability: Receive your personal data in a structured, machine-readable format and transfer it to another controller.
- Right to Object: Object to processing based on legitimate interests or for direct marketing purposes.
- Right to Withdraw Consent: Withdraw consent at any time for processing activities based on your consent.
To exercise your rights, contact us at hello@herogo.ae. We will respond within the timeframe required by applicable law.
8. Data Retention
We retain your personal data only as long as necessary to fulfill the purposes for which it was collected, comply with legal obligations, and resolve disputes. Retention periods vary depending on the type of data and processing purpose.
When data is no longer required, we securely delete or anonymize it.
9. Security of Your Data
We employ technical and organizational measures to safeguard your personal data against unauthorized access, loss, or alteration. These include encryption, firewalls, and secure server environments.
However, no system can be entirely secure. While we strive to protect your data, you acknowledge that any transmission of data is at your own risk.
10. Cookies and Tracking Technologies
HeroGo uses cookies and similar technologies to enhance your experience, analyze usage, and deliver personalized content.
Types of Cookies We Use:
- Essential Cookies: Required for the platform to function properly.
- Analytical Cookies: Gather information on how you use our Services.
- Marketing Cookies: Provide tailored advertisements based on your preferences.
You can manage your cookie preferences through your browser settings. For more information, please see our [Cookie Policy].
11. Children’s Privacy
Our Services are intended for general audiences and may be accessed by individuals under the age of 16. However, we require that all account registrations, purchases, or use of payment methods be completed by individuals who are at least 18 years old or by minors under the supervision and consent of a parent or legal guardian.
We do not knowingly collect personal data directly from children under the age of 16 without parental or guardian consent. If we become aware that personal data has been collected from a child without proper consent, we will take steps to delete the data promptly.
Parents and legal guardians are responsible for supervising their children’s use of our Services and ensuring that any data provided is accurate and consented to appropriately.
12. Dispute Resolution and Governing Law
All disputes related to this Privacy Policy will be resolved exclusively through binding arbitration under the rules of the Dubai International Financial Centre (DIFC).
You agree to:
- Waive your right to a jury trial or participation in class actions.
- Resolve disputes solely through individual arbitration, as outlined in the governing law section of our Terms of Business.
13. Changes to This Privacy Policy
HeroGo may update this Privacy Policy periodically to reflect changes in practices, laws, or regulations. Updated versions will be posted on our website with a revised "Effective Date."
14. Contact Us
If you have any questions or concerns about this Privacy Policy or your personal data, please contact us:
HeroGo, Inc.
Email: hello@herogo.ae